Lucene search

K

GoogleOSV:GHSA-Q3JM-V27Q-JFWW

HistoryMay 30, 2024 - 1:41 p.m.

titon/framework vulnerable to Remote Code Execution via Chosen-Ciphertext Attack

2024-05-3013:41:36

Google

osv.dev

7

titon framework

remote code execution

chosen-ciphertext attack

vulnerable

abandoned

maintained

AI Score

8.1

Confidence

Low

titon/framework package (which is now abandoned and no longer maintained) is vulnerable to remote code execution via Chosen-Ciphertext Attack.

References

github.com/FriendsOfPHP/security-advisories/blob/master/titon/framework/2017-11-20.yaml

github.com/titon/framework

github.com/titon/framework/issues/93

AI Score

8.1

Confidence

Low